CVE-2020-14169
published 2020-07-01CVE-2020-14169: The quick search component in Atlassian Jira Server and Data Center before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
The quick search component in Atlassian Jira Server and Data Center before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| atlassian | jira | < 8.9.1 | 8.9.1 |
| atlassian | jira_server_and_data_center | >= unspecified < 8.9.1 | 8.9.1 |
| atlassian | jira_software_data_center | < 8.9.1 | 8.9.1 |